$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34cc8adf-189e-4a7a-bdf6-9fcee351baf1.roa File: 34cc8adf-189e-4a7a-bdf6-9fcee351baf1.roa (raw, json) Hash identifier: F+VDrcVUzL1mQa7d6WEXHzeM9Et3jlr8rZjQWWo5t18= Subject key identifier: 93:D9:AC:4D:49:EE:78:9C:29:FD:C8:62:C5:CE:DC:52:2B:88:54:0F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25A4A5556027932413A6E82D6152683D9632CAFE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34cc8adf-189e-4a7a-bdf6-9fcee351baf1.roa Signing time: Tue 20 May 2025 15:12:48 +0000 ROA not before: Tue 20 May 2025 15:12:48 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 72.44.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:a4:a5:55:60:27:93:24:13:a6:e8:2d:61:52:68:3d:96:32:ca:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:12:48 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=4105f9e4631e97e84fae907ef098afa2636c3e1c11abeca4413814935e36f27f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:38:1c:64:3f:fd:72:ce:3c:57:ee:2b:e8:dc: 58:ac:55:6b:a6:bd:b3:fd:ae:d0:81:89:0a:75:37: 2e:ea:03:93:d0:ca:42:23:09:7f:63:21:ea:91:8b: 90:68:33:dd:01:ac:12:dd:0b:f0:23:66:6b:4f:e8: 8b:4c:f9:8e:f6:24:c6:3d:2b:31:93:0c:de:4f:64: db:a7:83:71:a5:e8:95:9f:34:77:ff:bb:b9:ba:df: 10:05:48:60:2c:c5:b1:28:e0:7c:4c:ca:f1:89:dc: 0d:52:80:f4:4d:27:8c:9f:55:4d:6f:7b:35:34:87: 0e:2e:ee:7d:63:7a:e9:fa:ac:60:ab:0a:c3:40:6a: ea:7c:94:28:de:63:1d:fa:7f:9b:c4:e7:4f:1e:7c: e0:88:07:a4:d3:21:1b:d0:72:d0:70:be:1f:86:22: 81:d4:8f:fb:00:10:59:a3:a7:92:fa:01:3c:c2:a0: 1e:d6:c7:3a:bd:16:87:8e:c2:2a:d7:03:f0:90:3a: 0d:79:24:36:f8:ee:15:f9:76:b5:86:b5:c4:ff:6a: 2f:b6:10:a8:9e:21:31:a7:42:16:b9:de:fc:45:7c: 3f:2c:ab:04:6b:77:97:0a:25:13:67:70:79:a7:7f: 0e:62:7b:30:bd:5d:6a:00:b7:37:8f:e3:01:5a:2c: bf:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:D9:AC:4D:49:EE:78:9C:29:FD:C8:62:C5:CE:DC:52:2B:88:54:0F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34cc8adf-189e-4a7a-bdf6-9fcee351baf1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.32.0/19 Signature Algorithm: sha256WithRSAEncryption 5a:c9:7e:57:c7:a0:41:9b:73:67:ea:fd:a3:9e:5a:84:0f:bb: ba:1d:d4:53:05:e7:21:d9:8f:f1:d1:14:05:54:3c:42:c1:f4: 96:05:36:6c:9b:f3:95:25:72:d6:06:9f:14:fc:d8:e5:c5:7b: dc:f9:6c:54:d1:b2:00:e3:5b:8e:07:0b:21:38:f5:58:3d:02: d3:7a:01:70:aa:ec:70:0b:20:5b:57:21:ef:8a:0d:0b:2e:38: 03:30:e5:77:63:3a:ed:7f:56:2c:a8:c2:01:44:7a:71:dc:7e: 97:18:e0:5b:64:1f:3b:ea:45:b1:9f:69:9f:2d:c1:a8:d0:b7: 20:df:c2:ad:b6:e7:f8:49:52:44:3d:f0:a0:05:4e:cf:b6:7f: 21:80:00:53:9b:84:74:e5:8e:5d:84:92:96:2c:0e:5c:02:0f: 7e:ef:6b:5f:5a:2a:5e:c9:69:8b:a8:2e:bf:1c:13:7e:80:fd: cc:5c:a8:55:77:32:05:8d:a4:77:8e:12:c0:a8:c3:11:90:b2: 82:b1:1e:10:b1:4b:ca:42:5b:00:bb:22:2c:cb:a3:f1:e3:d6: da:ea:92:b7:d5:fa:2e:13:2b:7b:26:e9:68:84:57:d6:70:80: 16:2c:0b:11:a5:aa:26:7f:f3:46:19:55:d1:34:c8:5f:a9:fa: 2b:e6:1c:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJaSlVWAnkyQTpugtYVJoPZYyyv4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUxMjQ4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTA1ZjllNDYzMWU5N2U4NGZhZTkwN2VmMDk4YWZhMjYz NmMzZTFjMTFhYmVjYTQ0MTM4MTQ5MzVlMzZmMjdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVOBxkP/1yzjxX7ivo3FisVWumvbP9rtCBiQp1Ny7qA5PQ ykIjCX9jIeqRi5BoM90BrBLdC/AjZmtP6ItM+Y72JMY9KzGTDN5PZNung3Gl6JWf NHf/u7m63xAFSGAsxbEo4HxMyvGJ3A1SgPRNJ4yfVU1vezU0hw4u7n1jeun6rGCr CsNAaup8lCjeYx36f5vE508efOCIB6TTIRvQctBwvh+GIoHUj/sAEFmjp5L6ATzC oB7Wxzq9FoeOwirXA/CQOg15JDb47hX5drWGtcT/ai+2EKieITGnQha53vxFfD8s qwRrd5cKJRNncHmnfw5iezC9XWoAtzeP4wFaLL/1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk9msTUnueJwp/chixc7cUiuIVA8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM0Y2M4YWRmLTE4OWUtNGE3YS1iZGY2LTlmY2VlMzUxYmFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVILCAwDQYJKoZIhvcNAQELBQADggEBAFrJflfHoEGbc2fq/aOeWoQPu7od 1FMF5yHZj/HRFAVUPELB9JYFNmyb85UlctYGnxT82OXFe9z5bFTRsgDjW44HCyE4 9Vg9AtN6AXCq7HALIFtXIe+KDQsuOAMw5XdjOu1/ViyowgFEenHcfpcY4FtkHzvq RbGfaZ8twajQtyDfwq225/hJUkQ98KAFTs+2fyGAAFObhHTljl2EkpYsDlwCD37v a19aKl7JaYuoLr8cE36A/cxcqFV3MgWNpHeOEsCowxGQsoKxHhCxS8pCWwC7IizL o/Hj1trqkrfV+i4TK3sm6WiEV9ZwgBYsCxGlqiZ/80YZVdE0yF+p+ivmHPc= -----END CERTIFICATE-----Generated at Sun Jun 1 04:43:08 2025 by rpki-client